MicroWorld Technologies confirms an update infrastructure access incident affecting a regional eScan server on Jan 20.

Unauthorized modification of an update component led to endpoint behavior changes, while core product code remained unaffected. Infrastructure was isolated, credentials rotated, and remediation updates issued.

What controls are most effective against update-path compromise?

Source: https://www.bleepingcomputer.com/news/security/escan-confirms-update-server-breached-to-push-malicious-update/

Follow @technadu for objective infosec coverage.

#SupplyChainSecurity #EndpointSecurity #ThreatAnalysis #UpdateIntegrity #InfosecCommunity